www.gambyfoundation.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:9c:7b:53:26:7f:d3:39:16:51:07:0f:6d:25:63:01:5f:fc was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.gambyfoundation.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:9c:7b:53:26:7f:d3:39:16:51:07:0f:6d:25:63:01:5f:fc
Serial Number (int): 314584833819926855212524300032696079441916
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 70:db:8c:95:91:fd:9b:06:1a:90:91:32:4c:ef:0f:90:d1:c2:79:7f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 54:76:e2:74:29:0c:d3:06:95:2e:fb:72:9c:60:bb:36:29:dd:ae:e5
Fingerprint (sha256): fe:9e:09:ab:81:4d:99:ce:64:35:32:b2:b8:22:eb:db:e4:1f:4d:2b:42:34:eb:9f:3b:06:cd:34:f1:9b:e9:ba

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.gambyfoundation.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.gambyfoundation.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gambyfoundation.org
www.gambyfoundation.org

Other certificates including the domain name gambyfoundation.org

(limited to 100 certificates)
www.gambyfoundation.org
gambyfoundation.org
gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org
www.gambyfoundation.org
www.gambyfoundation.org
www.gambyfoundation.org
www.gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org
gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org
gambyfoundation.org
www.gambyfoundation.org

Certificate

The complete raw certificate details for www.gambyfoundation.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaEsU8bt2Eu0OXV2DWBv
ixyLfs1k9dCQiO3qIZNe5nE3RRX7rmr1dn1iI++g1nHvXNUjREWNu1osHWwWe71c
qKE5OQdNtnnOHvTc+P6HR3lxzCX+kOr17lk8rVXmVLBybVpc8F4iMyd7eDgBlPpE
hFYnPZQ0U7oW6WWlOAw3wn8aHQZ8j9ulM/ZVtdHn2uAhZGczZyi3CJYLLd129hfG
tkatwOHhgijnT8stIdYQd5ZVjmWR/dCTtFB/kFBitvBYpwfqmBQq/xpWGcEF6axQ
IdBUemSJuiCtpwmjiIOGQNpqKX3z96VJhgGcDIwNZan/m2Uy7kP2dqG4SNU6iV7W
GwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 314584833819926855212524300032696079441916
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-19 19:53:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-18 19:53:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gambyfoundation.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22423657423067554680283868670454130088240860439078183955006961530788060455489509923776014744653046667483708520211237515620835842248914193933919556106120395794003314938369832048676355688752588066159657168213453475672957280771191042891297900088017994154722803201289365993260760711726398944004102287762352167526714006868719716333513730817104103151612048329845002571517524752781901846304555212006953844821620247427400422080585337969169993197735186743438707340252181040061594432812054478105223708362415476890137036995001952682973305859338296563870126024642061711367901997165099348400790974920065315153482534537032382731803
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							70db8c9591fd9b061a9091324cef0f90d1c2797f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gambyfoundation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gambyfoundation.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f6336000000165f39c58da0000040300483046022100c748320ce28b32e270fe3919f99c364c59777e8fb0ab48ad3c3ac82fed8f6128022100f3fb8d169428f4d046528e2c6be2b1a7b9563926f936a04dab718bb687822c3a007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000165f39c58ec0000040300473045022060700b9cafd8b1b4be9bf08fc130ee24974f3b9622bed54ac2c616dfdb5464ea022100f577a56983016f430fa9361489b4292e089ff321636d6974923cfbbaabca433d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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